Job Description (JD)
| Nama Program | PERKHIDMATAN KESELAMATAN SIBER (UJIAN PENEMBUSAN) [J620-001-5:2025] |
|---|---|
| Kod CU | J620-001-5:2025-C01 |
| Competency | Core |
| Tajuk CU | Execute Penetration Testing. |
| Penerangan CU | Execute cybersecurity penetration testing describes a controlled process where a cybersecurity penetration tester simulates attacks to identify exploitable vulnerabilities within systems, networks or applications. While a vulnerability assessment detects potential weaknesses, penetration testing goes further by attempting to exploit these vulnerabilities to understand their impact. Typically conducted periodically, after major updates, or when new threats emerge, it’s crucial for strengthening defences and preventing real-world attacks. Penetration testers perform this by using a mix of automated tools and manual techniques, such as scanning, attempting exploits, and assessing security controls. The person who is competent in this CU should be able to plan Penetration Testing (PT) activities, perform Vulnerabilities Assessment (VA) activities, perform vulnerability exploitation, perform artifact clean-up and produce Penetration Testing (PT) report. The outcome of this CU is that the organisation’s IT security teams are able to prioritize and address vulnerability issues for remediation and enhancing the organization’s overall security posture. |
| Tempoh Latihan | 200 |
| Objektif Pembelajaran | The learning outcomes of this competency are to enable the trainees to assess, exploit, and document vulnerabilities responsibly and providing valuable insights to strengthen organizational security posture while adhering to industry standards and best practices. Upon completion of this competency unit, trainees should be able to: 1. Plan Penetration Testing (PT) activities. 2. Perform Vulnerability Assessment (VA) activities. 3. Perform vulnerability exploitation. 4. Perform artifact clean-up. 5. Produce Penetration Testing (PT) report. |
| Pra-Syarat | Not Available. |